• Open Menu Close Menu
  • Apple
  • Shopping Bag
  • Apple
  • Mac
  • iPad
  • iPhone
  • Watch
  • TV
  • Music
  • Support
  • Search apple.com
  • Shopping Bag

Lists

Open Menu Close Menu
  • Terms and Conditions
  • Lists hosted on this site
  • Email the Postmaster
  • Tips for posting to public mailing lists
Re: trying to secure xdmcp over ssh - macbook pro <---> linux
[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: trying to secure xdmcp over ssh - macbook pro <---> linux

  • Subject: Re: trying to secure xdmcp over ssh - macbook pro <---> linux
  • From: John Clark <email@hidden>
  • Date: Mon, 27 Sep 2010 06:11:50 -0700 (PDT)
It shouldn't be a concern if you use a passphrase with your keys (just don't
save it in keychain if prompted).  To use the key, you still need to enter a
passphrase.  Without the passphrase, your key is useless.

You may also want to consider whole/full disk encryption if you are worried
about a stolen laptop.  I use PGP and have no problems with it.


John



----- Original Message ----
From: Audio Phile <email@hidden>
To: Jeremy Huddleston <email@hidden>
Cc: email@hidden
Sent: Mon, September 27, 2010 6:43:06 AM
Subject: Re: trying to secure xdmcp over ssh - macbook pro <---> linux

> Does this work for you?
>
> xinit /usr/bin/ssh -Y user@linux gnome-session --
> /usr/X11/bin/Xnest :5 -geometry 1270x750 -ac
>
> I'm not sure if it will handle password authentication, so
> make sure you use ssh keys for authentication.  You
> should get a nice graphical passphrase request, or you can
> use 'ssh-add' beforehand.

You're correct in that it doesn't allow me to type a password.  I can't use ssh
keys on my Linux box for security reasons since this laptop could get stolen and
with it the key to the server.  Your solution is much more elegant than what I
came up with:

#!/bin/bash
Xnest :1 -geometry 1250x750  -ac & xterm -display :1 -e "ssh -Y user@linux -n
gnome-session"

My script is clunky because

1) The user has to move the mouse over the xterm within the Xnest to
authenticate.
2) Once it loads up the xterm needs to be minimized.
3) Logging out is also clunky; the user has to logout from gnome, then ctrl+c a
few times in the xterm, and finally command+Q to close out of Xnest.

Wish I could get your one-liner to work with passwords :)



_______________________________________________
Do not post admin requests to the list. They will be ignored.
X11-users mailing list      (email@hidden)
Help/Unsubscribe/Update your Subscription:

This email sent to email@hidden




 _______________________________________________
Do not post admin requests to the list. They will be ignored.
X11-users mailing list      (email@hidden)

This email sent to email@hidden
References: 
 >Re: trying to secure xdmcp over ssh - macbook pro <---> linux (From: Audio Phile <email@hidden>)

  • Prev by Date: Re: trying to secure xdmcp over ssh - macbook pro <---> linux
  • Next by Date: Re: trying to secure xdmcp over ssh - macbook pro <---> linux
  • Previous by thread: Re: trying to secure xdmcp over ssh - macbook pro <---> linux
  • Next by thread: Re: trying to secure xdmcp over ssh - macbook pro <---> linux
  • Index(es):
    • Date
    • Thread